PCI DSS (Payment Card Industry Data Security Standard) is a regulation that encompasses any business that touches card holder data. It’s not just confined to a physical retailer you see on the high street; it covers eCommerce environments and contact centers processing payments over the phone too.